ipsec interface filters with default deny rule
-
For IPsec I had set allow all rule on the internface and yet I had:
Mar 8 14:47:22 ► IPsec Default deny rule IPv4 (1000000104)Enabled
No success, turned it off again, .. after playing around with the settings, I noticed that when I turned on:
And traffic started to flow, so enableing MOBIKE made my allow all rule work ?
Sounds to me like this is a bug !? Thought I'd put it on the forum cause I noticed when searching google this is a frequent thing. Thought maybe it help someone.
-
Also this was causing it to filter
However this only happens on non-intel systems. For some reason.
Maybe it's my imagination, but don't have this issue on intel systems. Disabled it now on all systems.
-
@ofloo After all this it still had this issue but far less, .. after going through the settings and saving once more suddenly it stopped filtering. When it was before. I'll see how it does over time.
-
@ofloo This is not limited to IPsec this happens in wireguard also. Not sure why but sometimes reloading some settings makes it not filter maybe it's I'm just imaging it but it comes and goes and it's not limited to just IPsec.
I have do not filter traffic on same interfaces, I have just allow all traffic on the interface so no any firewall rule is there just allow any from any to any and yet !!! It filters.
Lately it happens to happen more on WIREGUARD Interface then it does on IPSec.